$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/81ea6e17-e080-4e12-ab16-89fe13ce5ae4.roa File: 81ea6e17-e080-4e12-ab16-89fe13ce5ae4.roa (raw, json) Hash identifier: 3i8zIPcy5RrAT9ZJl1pT69XLC3UUS+TEWSzlKgHKtjE= Subject key identifier: E4:4B:B3:EB:BA:F0:20:B5:57:4B:D2:C5:72:6C:53:0B:E0:9C:5C:29 Certificate issuer: /CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Certificate serial: 20C17153FEF9DCBAF4662F173B0FB4B1CD626BC4 Authority key identifier: 2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/81ea6e17-e080-4e12-ab16-89fe13ce5ae4.roa Signing time: Mon 08 Sep 2025 18:37:20 +0000 ROA not before: Mon 08 Sep 2025 18:37:20 +0000 ROA not after: Mon 13 Oct 2025 23:59:59 +0000 asID: 14618 IP address blocks: 2600:f0fb:f10f::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/521eb33f-9672-4cd9-acce-137227e971ac.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 20 Sep 2025 22:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:c1:71:53:fe:f9:dc:ba:f4:66:2f:17:3b:0f:b4:b1:cd:62:6b:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08 Validity Not Before: Sep 8 18:37:20 2025 GMT Not After : Oct 13 23:59:59 2025 GMT Subject: serialNumber=63e7cde4b189b3b441af5018b8cbbd3a0affc63ea325bca64e829a8d3b23d6a2, CN=fbb27576-cac2-4381-9a53-6c15e0dc26ff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:23:34:c3:d9:c5:96:b1:70:6f:1e:3a:7c:70: a0:7c:9c:f5:1e:8a:2e:19:9a:e5:53:45:56:8a:b8: fa:0f:e3:e6:1e:34:d1:83:bd:9c:10:dd:f7:f9:56: b3:79:4a:eb:12:4b:47:a2:3a:a6:eb:1a:c5:b9:92: c5:d7:37:9f:16:bf:59:e9:a6:05:0c:be:90:a7:e3: b9:29:c3:86:5e:ff:b9:93:e1:93:23:12:6d:44:1a: 2c:af:eb:81:45:12:a1:64:d8:71:b7:48:ed:21:24: 25:19:f8:f7:e5:32:84:e7:68:50:07:6f:bf:cb:11: f6:a0:ac:a5:9c:8f:01:5e:21:24:9b:c2:c0:bb:00: 3f:83:cd:5e:96:3b:6f:8b:6c:c2:31:c2:5d:1a:f1: dc:77:b5:50:05:8f:79:e8:b7:37:c8:18:60:bc:dd: 0d:96:46:0d:95:43:0d:c1:fd:e1:07:d5:76:16:2c: b7:71:0a:5f:aa:ca:69:7b:77:63:9f:85:64:48:6d: 78:ee:bb:dd:58:6f:35:0d:fb:63:33:ad:3e:37:18: d6:84:27:8d:ef:6b:d6:f4:7f:04:ee:a6:a3:cb:d7: c0:bf:2e:6a:fe:8d:4a:00:a2:a6:bf:b7:fd:6b:dc: f5:d3:b2:83:90:22:2e:26:0d:ed:91:56:2f:fb:25: ff:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:4B:B3:EB:BA:F0:20:B5:57:4B:D2:C5:72:6C:53:0B:E0:9C:5C:29 X509v3 Authority Key Identifier: keyid:2E:18:E2:08:A1:82:57:1B:09:7D:D2:23:A7:16:9E:40:EB:E9:89:3D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/521eb33f-9672-4cd9-acce-137227e971ac/6a9537a8-a685-4b48-9fa8-8362e4fc47ae/b5845c307d0bf61b134b8ab711545826b1707fd5f0af84da08.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/81ea6e17-e080-4e12-ab16-89fe13ce5ae4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/517f3ed7-58b5-4796-be37-14d62e48f056/C_YbE0uKtxFUWCaxcH_V8K-E2gg.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:f0fb:f10f::/48 Signature Algorithm: sha256WithRSAEncryption 18:13:de:3a:c9:bf:bb:76:a5:20:c5:66:99:1d:97:00:f7:28: 66:d2:2b:d1:5c:80:1d:cb:20:dd:10:8e:6f:bb:97:7a:70:8a: 11:fe:5a:58:ec:e3:84:b9:4c:6e:56:ab:3b:5a:49:9b:fe:98: 63:5c:7b:41:04:fb:94:af:bd:a1:94:64:56:a7:e8:1e:29:a5: c9:08:d6:f6:f2:11:14:81:04:18:fb:70:e6:d2:27:11:69:bd: e6:23:a6:86:f5:3a:90:95:f7:4e:fc:f3:2e:e8:4e:60:ce:1d: 56:60:2d:37:ca:de:8f:33:c7:e7:d0:d9:65:ce:38:10:ae:15: 21:33:9f:11:82:24:fd:f6:e5:a8:f3:ff:93:05:63:39:d0:9c: 3f:9d:a2:90:55:f4:51:4b:56:c2:90:5f:fb:56:00:ce:c1:c5: 3e:52:ad:c3:69:58:83:78:cd:cf:09:ed:d6:6c:c3:cd:f0:0a: eb:ff:8f:53:4b:51:05:44:4e:9f:fb:2c:24:5d:52:31:21:08: 8e:c8:04:e7:62:ca:b9:d3:a0:0f:68:8b:b7:b6:ab:cb:09:d7: ff:94:2a:4b:af:b4:62:34:5a:9a:a2:37:51:85:32:d3:5f:75: 1c:44:c9:d5:76:19:15:64:d6:0a:10:4c:fb:c1:17:a3:f3:94: e1:58:84:2a -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUIMFxU/753Lr0Zi8XOw+0sc1ia8QwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYjU4NDVjMzA3ZDBiZjYxYjEzNGI4YWI3MTE1NDU4MjZi MTcwN2ZkNWYwYWY4NGRhMDgwHhcNMjUwOTA4MTgzNzIwWhcNMjUxMDEzMjM1OTU5 WjB6MUkwRwYDVQQFE0A2M2U3Y2RlNGIxODliM2I0NDFhZjUwMThiOGNiYmQzYTBh ZmZjNjNlYTMyNWJjYTY0ZTgyOWE4ZDNiMjNkNmEyMS0wKwYDVQQDEyRmYmIyNzU3 Ni1jYWMyLTQzODEtOWE1My02YzE1ZTBkYzI2ZmYwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDgIzTD2cWWsXBvHjp8cKB8nPUeii4ZmuVTRVaKuPoP4+Ye NNGDvZwQ3ff5VrN5SusSS0eiOqbrGsW5ksXXN58Wv1nppgUMvpCn47kpw4Ze/7mT 4ZMjEm1EGiyv64FFEqFk2HG3SO0hJCUZ+PflMoTnaFAHb7/LEfagrKWcjwFeISSb wsC7AD+DzV6WO2+LbMIxwl0a8dx3tVAFj3notzfIGGC83Q2WRg2VQw3B/eEH1XYW LLdxCl+qyml7d2OfhWRIbXjuu91YbzUN+2MzrT43GNaEJ43va9b0fwTupqPL18C/ Lmr+jUoAoqa/t/1r3PXTsoOQIi4mDe2RVi/7Jf8rAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU5Euz67rwILVXS9LFcmxTC+CcXCkwHwYDVR0jBBgwFoAULhjiCKGCVxsJ fdIjpxaeQOvpiT0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzUyMWViMzNmLTk2NzItNGNkOS1hY2NlLTEzNzIyN2U5NzFhYy82YTk1MzdhOC1h Njg1LTRiNDgtOWZhOC04MzYyZTRmYzQ3YWUvYjU4NDVjMzA3ZDBiZjYxYjEzNGI4 YWI3MTE1NDU4MjZiMTcwN2ZkNWYwYWY4NGRhMDguY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNTE3ZjNlZDctNThiNS00Nzk2LWJlMzctMTRk NjJlNDhmMDU2LzgxZWE2ZTE3LWUwODAtNGUxMi1hYjE2LTg5ZmUxM2NlNWFlNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzUxN2YzZWQ3LTU4YjUtNDc5Ni1iZTM3 LTE0ZDYyZTQ4ZjA1Ni9DX1liRTB1S3R4RlVXQ2F4Y0hfVjhLLUUyZ2cuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAPD78Q8wDQYJKoZIhvcNAQELBQADggEBABgT3jrJv7t2pSDFZpkdlwD3 KGbSK9FcgB3LIN0Qjm+7l3pwihH+Wljs44S5TG5WqztaSZv+mGNce0EE+5SvvaGU ZFan6B4ppckI1vbyERSBBBj7cObSJxFpveYjpob1OpCV90788y7oTmDOHVZgLTfK 3o8zx+fQ2WXOOBCuFSEznxGCJP325ajz/5MFYznQnD+dopBV9FFLVsKQX/tWAM7B xT5SrcNpWIN4zc8J7dZsw83wCuv/j1NLUQVETp/7LCRdUjEhCI7IBOdiyrnToA9o i7e2q8sJ1/+UKkuvtGI0WpqiN1GFMtNfdRxEydV2GRVk1goQTPvBF6PzlOFYhCo= -----END CERTIFICATE-----Generated at Fri Sep 19 08:03:56 2025 by rpki-client